Cyberattacks by NoName057 cause renewed concern in Europe
- Cyberpeace Tech
- Aug 21, 2025
- 2 min read
The pro-Russian hacktivist group NoName057(16) has resumed its activities with renewed vigor after the international operation “Eastwood,” a blow that had weakened its digital infrastructure. Despite these actions against it, the group's cyberattacks have once again targeted public entities, local governments, transportation portals, and companies in Spain.
In this new offensive, NoName057 is not acting alone: it has the support of other allied groups such as Z-pentest and Mr.Hamza.
Its goal is to demonstrate that its operational capacity remains intact and that it continues to be a threat to high-level institutions.
Although in many cases the attacks last only a few seconds, when they manage to overcome the defenses of the systems, they can leave official portals and citizen services out of service for hours. These incidents are grouped under campaigns such as #timetoretribution and #opSpain, and are part of a broader context that also affects countries such as Germany, Italy, Belgium, and France.
Strategy and evolution of the group
NoName057's attacks are mainly characterized by Distributed Denial of Service (DDoS) techniques, which saturate the websites of public and private organizations.
However, cybersecurity specialists have detected an evolution towards more complex methods, such as system intrusions and theft of sensitive information.
The group announces its objectives in forums at least 24 hours in advance and, when they consider their attacks successful, they disseminate evidence through various channels to amplify their propaganda.
Origin and expansion
NoName057(16) emerged after Russia's invasion of Ukraine, establishing itself as one of the most active groups in the hacktivist environment. Since then, it has attacked institutions in various European countries, adding Spain to its list in 2023, with actions that affected government websites, ministries, the Constitutional Court, and even the Royal Household.
In 2024, Spanish authorities arrested three people linked to the group, showing that its operations are not limited to the digital realm, but also involve local collaborators in different countries.
An example for Mexico
Although recent attacks have focused on Europe, the case of Spain serves as an example for Mexico. Mexican public institutions, digital citizen services, and critical infrastructure could also become targets of international hacktivism groups. Strengthening technological defenses and preparing immediate response plans is key to minimizing the risks of potential cyberattacks.
Cyberattacks are relentless and becoming more sophisticated every day. At Cyberpeace, we help you protect what matters most. Follow us and stay up to date with the best cybersecurity practices.
Comments